A heap-based buffer over-read was discovered in the get_le64 function in bele.h in UPX 4.0.0 via a crafted Mach-O file.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/upx/upx/issues/394 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2022-08-25T19:38:10
Updated: 2024-08-04T16:25:42.453Z
Reserved: 2020-10-27T00:00:00
Link: CVE-2020-27801
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-08-25T20:15:08.727
Modified: 2022-08-27T03:14:00.993
Link: CVE-2020-27801
Redhat
No data.